Skip to content

Commit

Permalink
Implement Policy resource for LB Http Application Profile
Browse files Browse the repository at this point in the history
Signed-off-by: Shizhao Liu <[email protected]>
  • Loading branch information
Shizhao Liu committed Dec 6, 2023
1 parent e9cf9cf commit 360742c
Show file tree
Hide file tree
Showing 5 changed files with 583 additions and 0 deletions.
33 changes: 33 additions & 0 deletions nsxt/lb_utils.go
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,8 @@ import (
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
"github.com/vmware/go-vmware-nsxt/loadbalancer"
"github.com/vmware/vsphere-automation-sdk-go/runtime/protocol/client"
"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/infra"
)

// Helpers for common LB monitor schema settings
Expand Down Expand Up @@ -237,3 +239,34 @@ func resourceNsxtLbMonitorDelete(d *schema.ResourceData, m interface{}) error {
}
return nil
}

func resourceNsxtPolicyLBAppProfileExists(id string, connector client.Connector, isGlobalManager bool, resourceType string) (bool, error) {
client := infra.NewLbAppProfilesClient(connector)
_, err := client.Get(id)
if err == nil {
return true, nil
}

if isNotFoundError(err) {
return false, nil
}
msg := fmt.Sprintf("Error retrieving resource %s", resourceType)
return false, logAPIError(msg, err)
}

func resourceNsxtPolicyLBAppProfileDelete(d *schema.ResourceData, m interface{}, resourceType string) error {
id := d.Id()
if id == "" {
return fmt.Errorf("Error obtaining %s ID", resourceType)
}

connector := getPolicyConnector(m)
forceParam := true
client := infra.NewLbAppProfilesClient(connector)
err := client.Delete(id, &forceParam)
if err != nil {
return handleDeleteError(resourceType, id, err)
}

return nil
}
1 change: 1 addition & 0 deletions nsxt/provider.go
Original file line number Diff line number Diff line change
Expand Up @@ -437,6 +437,7 @@ func Provider() *schema.Provider {
"nsxt_edge_high_availability_profile": resourceNsxtEdgeHighAvailabilityProfile(),
"nsxt_policy_host_transport_node_collection": resourceNsxtPolicyHostTransportNodeCollection(),
"nsxt_policy_lb_client_ssl_profile": resourceNsxtPolicyLBClientSslProfile(),
"nsxt_policy_lb_http_application_profile": resourceNsxtPolicyLBHttpApplicationProfile(),
},

ConfigureFunc: providerConfigure,
Expand Down
249 changes: 249 additions & 0 deletions nsxt/resource_nsxt_policy_lb_http_application_profile.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,249 @@
/* Copyright © 2020 VMware, Inc. All Rights Reserved.
SPDX-License-Identifier: MPL-2.0 */

package nsxt

import (
"fmt"
"log"

"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
"github.com/vmware/vsphere-automation-sdk-go/runtime/bindings"
"github.com/vmware/vsphere-automation-sdk-go/runtime/data"
"github.com/vmware/vsphere-automation-sdk-go/runtime/protocol/client"
"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/infra"
"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/model"
)

var lBHttpProfileXForwardedForValues = []string{
model.LBHttpProfile_X_FORWARDED_FOR_REPLACE,
model.LBHttpProfile_X_FORWARDED_FOR_INSERT,
}

func resourceNsxtPolicyLBHttpApplicationProfile() *schema.Resource {
return &schema.Resource{
Create: resourceNsxtPolicyLBHttpApplicationProfileCreate,
Read: resourceNsxtPolicyLBHttpApplicationProfileRead,
Update: resourceNsxtPolicyLBHttpApplicationProfileUpdate,
Delete: resourceNsxtPolicyLBHttpApplicationProfileDelete,
Importer: &schema.ResourceImporter{
State: nsxtPolicyPathResourceImporter,
},

Schema: map[string]*schema.Schema{
"nsx_id": getNsxIDSchema(),
"path": getPathSchema(),
"display_name": getDisplayNameSchema(),
"description": getDescriptionSchema(),
"revision": getRevisionSchema(),
"tag": getTagsSchema(),
"http_redirect_to": {
Type: schema.TypeString,
Description: "A URL that incoming requests for that virtual server can be temporarily redirected to, If a website is temporarily down or has moved",
Optional: true,
},
"http_redirect_to_https": {
Type: schema.TypeBool,
Description: "A boolean flag which reflects whether the client will automatically be redirected to use SSL",
Optional: true,
Default: false,
},
"idle_timeout": {
Type: schema.TypeInt,
Description: "Timeout in seconds to specify how long an HTTP application can remain idle",
Optional: true,
Default: 15,
ValidateFunc: validation.IntAtLeast(1),
},
"ntlm": {
Type: schema.TypeBool,
Description: "A boolean flag which reflects whether NTLM challenge/response methodology will be used over HTTP",
Optional: true,
Default: false,
},
"request_body_size": {
Type: schema.TypeInt,
Description: "Maximum request body size in bytes (Unlimited if not specified)",
Optional: true,
},
"request_header_size": {
Type: schema.TypeInt,
Description: "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed",
Optional: true,
Default: 1024,
ValidateFunc: validation.IntBetween(1, 65536),
},
"response_buffering": {
Type: schema.TypeBool,
Optional: true,
Description: "A boolean flag indicating whether the response received by LB from the backend will be saved into the buffers",
Default: false,
},
"response_header_size": {
Type: schema.TypeInt,
Description: "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed",
Optional: true,
Default: 4096,
ValidateFunc: validation.IntBetween(1, 65536),
},
"response_timeout": {
Type: schema.TypeInt,
Description: "Number of seconds waiting for the server response before the connection is closed",
Optional: true,
Default: 60,
ValidateFunc: validation.IntAtLeast(1),
},
"server_keep_alive": {
Type: schema.TypeBool,
Optional: true,
Description: "A boolean flag indicating whether the backend connection will be kept alive for client connection. If server_keep_alive is true, it means the backend connection will keep alive for the client connection. Every client connection is tied 1:1 with the corresponding server-side connection. If server_keep_alive is false, it means the backend connection won't keep alive for the client connection. If server_keep_alive is not specified for API input, its value in API output will be the same with the property ntlm",
Default: false,
},
"x_forwarded_for": {
Type: schema.TypeString,
ValidateFunc: validation.StringInSlice(lBHttpProfileXForwardedForValues, false),
Optional: true,
Description: "When X-Forwareded-For is configured, X-Forwarded-Proto and X-Forwarded-Port information is added automatically into request header",
},
},
}
}

func resourceNsxtPolicyLBHttpApplicationProfileExists(id string, connector client.Connector, isGlobalManager bool) (bool, error) {
return resourceNsxtPolicyLBAppProfileExists(id, connector, isGlobalManager, model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE)
}

func resourceNsxtPolicyLBHttpApplicationProfilePatch(d *schema.ResourceData, m interface{}, id string) error {
connector := getPolicyConnector(m)
converter := bindings.NewTypeConverter()

displayName := d.Get("display_name").(string)
description := d.Get("description").(string)
tags := getPolicyTagsFromSchema(d)
httpRedirectTo := d.Get("http_redirect_to").(string)
httpRedirectToHTTPS := d.Get("http_redirect_to_https").(bool)
idleTimeout := int64(d.Get("idle_timeout").(int))
ntlm := d.Get("ntlm").(bool)
requestBodySize := int64(d.Get("request_body_size").(int))
requestHeaderSize := int64(d.Get("request_header_size").(int))
responseBuffering := d.Get("response_buffering").(bool)
responseHeaderSize := int64(d.Get("response_header_size").(int))
responseTimeout := int64(d.Get("response_timeout").(int))
serverKeepAlive := d.Get("server_keep_alive").(bool)
xForwardedFor := d.Get("x_forwarded_for").(string)
resourceType := model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE
obj := model.LBHttpProfile{
DisplayName: &displayName,
Description: &description,
Tags: tags,
HttpRedirectToHttps: &httpRedirectToHTTPS,
IdleTimeout: &idleTimeout,
Ntlm: &ntlm,
RequestHeaderSize: &requestHeaderSize,
ResponseBuffering: &responseBuffering,
ResponseHeaderSize: &responseHeaderSize,
ResponseTimeout: &responseTimeout,
ServerKeepAlive: &serverKeepAlive,
ResourceType: resourceType,
}
if requestBodySize > 0 {
obj.RequestBodySize = &requestBodySize
}
if len(xForwardedFor) > 0 {
obj.XForwardedFor = &xForwardedFor
}
if len(httpRedirectTo) > 0 {
obj.HttpRedirectTo = &httpRedirectTo
}

log.Printf("[INFO] Patching LBHttpProfile with ID %s", id)
dataValue, errs := converter.ConvertToVapi(obj, model.LBHttpProfileBindingType())
if errs != nil {
return fmt.Errorf("Error converting LBHttpProfile %s", errs[0])
}

client := infra.NewLbAppProfilesClient(connector)
return client.Patch(id, dataValue.(*data.StructValue))
}

func resourceNsxtPolicyLBHttpApplicationProfileCreate(d *schema.ResourceData, m interface{}) error {

// Initialize resource Id and verify this ID is not yet used
id, err := getOrGenerateID(d, m, resourceNsxtPolicyLBHttpApplicationProfileExists)
if err != nil {
return err
}

err = resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id)
if err != nil {
return handleCreateError("LBHttpProfile", id, err)
}

d.SetId(id)
d.Set("nsx_id", id)

return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m)
}

func resourceNsxtPolicyLBHttpApplicationProfileRead(d *schema.ResourceData, m interface{}) error {
connector := getPolicyConnector(m)
converter := bindings.NewTypeConverter()

id := d.Id()
if id == "" {
return fmt.Errorf("Error obtaining LBHttpProfile ID")
}

client := infra.NewLbAppProfilesClient(connector)
obj, err := client.Get(id)
if err != nil {
return handleReadError(d, "LBHttpProfile", id, err)
}

baseObj, errs := converter.ConvertToGolang(obj, model.LBHttpProfileBindingType())
if len(errs) > 0 {
return fmt.Errorf("LBAppProfile with id %s is not of type LBHttpProfile %s", id, errs[0])
}
lbHTTPProfile := baseObj.(model.LBHttpProfile)

d.Set("display_name", lbHTTPProfile.DisplayName)
d.Set("description", lbHTTPProfile.Description)
setPolicyTagsInSchema(d, lbHTTPProfile.Tags)
d.Set("nsx_id", id)
d.Set("path", lbHTTPProfile.Path)
d.Set("revision", lbHTTPProfile.Revision)

d.Set("http_redirect_to", lbHTTPProfile.HttpRedirectTo)
d.Set("http_redirect_to_https", lbHTTPProfile.HttpRedirectToHttps)
d.Set("idle_timeout", lbHTTPProfile.IdleTimeout)
d.Set("ntlm", lbHTTPProfile.Ntlm)
d.Set("request_body_size", lbHTTPProfile.RequestBodySize)
d.Set("request_header_size", lbHTTPProfile.RequestHeaderSize)
d.Set("response_buffering", lbHTTPProfile.ResponseBuffering)
d.Set("response_header_size", lbHTTPProfile.ResponseHeaderSize)
d.Set("response_timeout", lbHTTPProfile.ResponseTimeout)
d.Set("server_keep_alive", lbHTTPProfile.ServerKeepAlive)
d.Set("x_forwarded_for", lbHTTPProfile.XForwardedFor)

return nil
}

func resourceNsxtPolicyLBHttpApplicationProfileUpdate(d *schema.ResourceData, m interface{}) error {

id := d.Id()
if id == "" {
return fmt.Errorf("Error obtaining LBHttpProfile ID")
}

err := resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id)
if err != nil {
return handleUpdateError("LBHttpProfile", id, err)
}

return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m)
}

func resourceNsxtPolicyLBHttpApplicationProfileDelete(d *schema.ResourceData, m interface{}) error {
return resourceNsxtPolicyLBAppProfileDelete(d, m, model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE)
}
Loading

0 comments on commit 360742c

Please sign in to comment.